Delete access keys for the root user

You can use the AWS Management Console, the AWS CLI or the AWS API to delete the root user access keys.

AWS Management Console

To perform the following steps, you must have at least the following IAM permissions:

You must sign in as the AWS account root user, which requires no additional AWS Identity and Access Management (IAM) permissions. You can't perform these steps as an IAM user or role.

Use your AWS account's email address and password to sign in to the Getting Started with the AWS Management Console as your AWS account root user.
In the upper right corner of the console, choose your account name or number and then choose Security Credentials.
In the Access keys section, select the access key that you want to delete, and then, under Actions, choose Delete.

Note
Alternatively, you can Deactivate an access key, instead of permanently deleting it. This way you can resume using it in the future without having to change either the key ID or secret key. While the key is inactive, any attempts to use it in requests to the AWS API fail with the error access denied.
On the Delete <access key ID> dialog box, choose Deactivate, enter the access key ID to confirm you want to delete it, and then choose Delete.

AWS CLI & SDKs

To perform the following steps, you must have at least the following IAM permissions:

You must sign in as the AWS account root user, which requires no additional AWS Identity and Access Management (IAM) permissions. You can't perform these steps as an IAM user or role.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Create access keys for the root user

Users